Arthur Lindo (Art)
Deputy director for policy
Federal Reserve Board's Division of Supervision and Regulation
Arthur Lindo (Art) is the Deputy Director for Policy in the Federal Reserve Board’s Division of Supervision and Regulation. His principal responsibilities include overseeing the development and assessment of the effectiveness of Board regulations and policies affecting the financial services sector and coordinating the Board’s domestic and international regulatory programs. He also advises the Board on emerging policy matters that have implications for the supervision and regulation of the financial services sector. Art is an active participant in various committees in the Federal Reserve System and is the Chairman of the Basel Committee’s Operational Resiliency Working Group.
Art has a BA in Accounting from the Catholic University of America and a MBA in Finance from the George Washington University.
Head of operational risk & resilience division
Bank of England
Mariam is currently Head of Operational Risk and Resilience Risk Division within the Supervisory Risk Specialists at the Bank of England. She has responsibility for the implementation of the operational resilience policy and cyber stress testing. Previously, Mariam led the credit risk analysis for the solvency and climate stress tests as Head of Credit Risk Division. She has experience in financial and operational resilience in banks and FMIs. Mariam has a PhD in Financial Economics from Imperial College.
Managing director and chief risk officer
Sumitomo Mitsui Banking Corporation
Ash Majid is Managing Director and Chief Risk Officer for SMBC Capital Markets, Inc. & SMBC Nikko Securities America, Inc. wholly owned subsidiaries of SMBC Americas Holdings, Inc. In his current role he oversees teams responsible for managing the risk from the two subsidiaries within the broader America’s Division risk management team. Prior to joining SMBC Capital Markets, Ash worked at Ernst and Young, LLP within their Quantitative Advisory Services and SunTrust Banks, Inc. with oversight of their derivatives trading desks' market risk. Ash holds a Doctorate degree in Electrical and Computer Engineering and a Master's degree in Quantitative and Computational Finance from Georgia Institute of Technology. Additionally, Ash holds FINRA Series 7 & 24 licenses.
Director non financial risk management, head of NFRM infrastructure coverage
The FAIR Institute
Widely considered a thought leader in risk management and information security, Jack has been employed in technology for over thirty five years, and specializing in information security and risk management for over thirty years. During this time he has garnered a decade of experience as a CISO, including five years for a Fortune 100 financial services company. His work has also been recognized by his peers and the industry, earning him the 2006 ISSA Excellence in the Field of Security Practices award, and the 2012 CSO Compass Award for Leadership in Risk Management.
Jack is the originator of the now industry standard risk measurement model known as Factor Analysis of Information Risk (FAIR). FAIR has seen adoption globally, within organizations of all sizes, and is now regularly included in graduate-level university courses on information security and referenced by other industry standards. He also co-authored a book on FAIR entitled "Measuring and Managing Information Risk - A FAIR Approach", which has been inducted into the Cybersecurity Canon as a "must read" for professionals in the industry. Jack was also on the ISACA task force that developed the RiskIT framework, and he led the ISACA group that developed the CRISC certification.
Today, Jack is in charge of Risk Science at RiskLens, Inc. and is a sought after speaker at national conferences and universities. He is also an adjunct instructor of risk measurement for Carnegie Mellon University. Jack is currently also the Chairman of The FAIR Institute (http://www.fairinstitute.org/), an award-winning non-profit organization led by information risk officers, CISOs and business executives to advance risk management practices based on FAIR.
Operational risk - global head enterprise tech/cyber risk; engineering & architecture, cloud, emerging tech
Jeannie M Pumphrey
Director head of third-party risk management operational risk management
Principal, digital assets
Managing director, head of risk supervision
SG Corporate and Investment Banking
Michele's career at Société Générale began in 1993 and has held positions in Internal Audit, Investment Banking Division, managed multiple teams within the Operations Division, Head of Operational Risk and currently is Head of Risk Supervision for the Americas.
Michele was appointed as Head of Risk Supervision in July 2016 reporting to the Chief Risk Officer. She is responsible for defining the strategic goals, missions, day-to-day management of Operational Risk Management, Data and Technology Risk, Third Party Risk Management, Cyber Security Risk Management and Global Risk Monitoring teams in order to promote a secure, profitable and sustainable platform.
Michele received a Masters in Finance from the St. Joseph's University, Philadelphia, PA and a B.S. in Accounting from St. Joseph's University. Michele has successfully obtained series 99 regulatory license.
Regional chief information security officer
Acting chief risk officer
Head of operational risk Americas
Penny Cagan is the Americas Head of Operational Risk Control with UBS, where she currently manages the function for the combined US entities.
Operational Risk & Regulation magazine awarded Penny three awards for her contribution to the field of operational risk, including a special industry award in 2011. Penny has published widely, including authoring the chapter on Risk and Control Self Assessments for the PRMIA Operational Risk Manager Handbook.
Penny sits on the boards of PRMIA and Workforce Professional Training Institute.
Penny has more than 40 years of risk management, compliance, controls, and research experience, including managing risk and compliance functions in large financial institutions. Penny has experience with both developing and implementing risk and control frameworks, including convergence among risk disciplines.
Deputy comptroller for operational risk
Office of the Comptroller of the Currency
Kevin Greenfield is the Deputy Comptroller for Operational Risk at the Office of the Comptroller of the Currency (OCC).
In this role, Mr. Greenfield oversees development of policy and examination procedures addressing operational risk, bank information technology, cybersecurity, critical infrastructure resilience, payments systems, and corporate and risk governance. He assumed these responsibilities in November 2019.
Prior to this role, Mr. Greenfield served as the Director for Bank Information Technology for the Operational Risk Division where he managed a team responsible for developing, communicating, and interpreting policies for the OCC's supervision of technology operations at financial institutions. He represented the OCC on several interagency groups that focus on coordination and development of information technology risk management supervisory guidance for such topics as information security, resiliency, technology operations, corporate governance, and independent risk management.
Prior to being named Director for Bank Information Technology in 2014, Mr. Greenfield spent 14 years with the OCC's Large Bank Supervision Department, where he gained experience examining large and complex technology operations at several of the largest U.S. financial institutions. In this role, he held various technology supervision roles at large financial institutions based in Pittsburgh, Charlotte, and New York City.
Mr. Greenfield is a graduate of the University of Dayton and holds the Certified Information Systems Auditor professional certification.
Director - GRC program manager
Head of cybersecurity, data and technology risk and compliance
Fred Harris is the Head of Cybersecurity Risk, Data Risk and IT Risk at Société Générale Americas. Fred is an accomplished Technology Executive with more than 30 years of technology and cybersecurity experience in the financial services industry. Before joining SG, Fred was in a similar role at Bank of America and before that he was with Deloitte for 16 years in a variety of role
Laurén Robbins To
Vice president and general manager, financial services
Laurén Robbins To is the General Manager of ServiceNow’s Financial Services business unit. Named by IBM and FinTech Magazine as a 2020 “Top 100 Women in FinTech,” Laurén is responsible for co-creating industry solutions through strategic design partnerships with customers and bringing those solutions to market. Under her leadership, ServiceNow launched the Financial Services Operations industry product, which has driven business transformation for top financial institutions. Prior to ServiceNow, Laurén built and led the Corporate & Investment Banking vertical at Salesforce. She began her career as a banker in both the Investment Banking and Debt Capital Markets organizations at Deutsche Bank. Laurén is based in New York City and holds a bachelor’s degree from the University of Pennsylvania in Economics and Mathematics.
Head of operational risk measurement and analytics
Nedim Baruh leads the Operational Risk Capital and Analytics function at J.P. Morgan Chase ("JPMC") and is responsible for the Operational Risk Capital and Stress Testing processes.
Most recently, Nedim has been leading JPMC's effort to enhance its Scenario Analysis program by developing factor based models to assess its material risks. This work will help JPMC bridge the gap between operational risk measurement and management.
Prior to joining JPMC, Nedim was part of the Algorithmics Operational Risk advisory function and led many client engagements in the operational risk space.
Nedim has a B.S. in Economics from the University of Pennsylvania.
Senior director of quantitative assessments
United Health Group
Michael Barton is the Director of Operational Risk Quantification and Scenario Analysis at AIG. In his role, he leads the development and implementation of operational risk stress testing, economic capital estimation, and allocation of those estimates to the business lines, as well as supporting the development of and quantification of operational loss scenarios for the organization. In this role, Michael has worked extensively with cyber and business professionals around identifying and quantifying cyber risk. Before working at AIG, Michael was the Head of the Regulatory Solutions Quantification group in U.S. Bank’s Corporate Treasury department. In this role, he was responsible for CCAR/DFAST and Regulatory Capital modeling for Operational Risk as well as setting up a governance framework for models and analytical tools in the Corporate Treasury department. Previous to those roles, Michael worked in an actuarial capacity at Sun Life Financial in Boston handling variable annuity reserving, fixed and variable annuity lapse study estimations, and retirement product pricing. He held a similar variable annuity reserving role in Security Benefit Corporation in Topeka, KS before that. Michael has a Bachelor’s Degree in Mathematics with an Actuarial Emphasis, and a Master’s Degree in Theology.
Vice president operational risk asset management and operations multi-family
As Vice President of Operational Risk, Michael leads the first line of defense risk management for financial crimes, privacy and information security, business resiliency, vendor management and compliance with regulatory requirements. Mike and his team establishes the risk direction by aligning the Multifamily Governance Framework with the business operating model. He continually improves governance by understanding the multifaceted drivers that effect risk environment.
Global head of financial service go-to-market
Fusion Risk Management
With many years of experience deploying business continuity and risk management platforms globally, Rich Cooper oversees customer success and business development for large, global accounts.
Rich has more than 20 years of experience in the business continuity and risk management marketplace, running programs and implementing software in both Europe and North America for some of the world’s largest organizations. He has an MBCI certification from the Business Continuity Institute.
Head of non-financial risk - Americas
Evan's background is in the measurement and quantification of credit risk and operational risk. His primary focus is currently on supporting institutions in building operational risk modeling for stress testing, developing their risk identification process and developing their model risk management frameworks.
Some of his recent client engagements include:
For a foreign global bank, helped them develop a comprehensive operational risk framework for their US based IHC. Ensured both integration of the framework in their international framework as well as US regulatory compliance.
For a large internationally active US bank: supported major change of course in CCAR operational risk stress estimates a few months prior to submission in reaction to regulatory guidance.
For a large regional bank: built their CCAR loss projection model and wrote the documentation for the full CCAR operational risk submission.
For a global bank conducted a validation of their operational risk modeling framework for CCAR
Prior to joining Oliver Wyman, Evan was the Head of Risk Consulting for Financial Institutions for Aon in Columbia, Maryland. He was in charge of building Aon's risk consulting practice for financial institutions and managed multiple teams based in North America and Europe to deliver services to clients worldwide. Previously, Evan was an Assistant Vice President of the Federal Reserve Bank of Richmond, where he created the center of excellence for operational risk which served the System needs for operational risk related matters. The team was in charge of the supervision of all AMA and CCAR banks in the US and developed the Fed's CCAR model for operational risk.
Evan earned a B.A. and M.A. in Economics from the Université Catholique de Louvain in Belgium. He received an additional M.A. as well as his Ph.D. in Economics from the University of California at Los Angeles.
Editor, risk management
Tom Osborn is the desk editor of Risk.net's risk management coverage. Prior to joining Risk, he reported on the futures and foreign exchange industries for Dow Jones' Financial News and the Euromoney group of publications. Osborn holds a bachelor's degree in English literature from the University of Warwick.
Senior vice president – head of third-party risk management
Valley National Bank
Rodney Campbell is a recognized industry leader in Third-Party Risk Management (TPRM), Enterprise Risk Management (ERM), Relationship Management & Contract Management. Rodney is a business champion, dedicated to empowering organizations and business leaders with industry insights and best practices to establish both regulatory compliance and organizational success. Experienced in developing global programs, organizational frameworks, and business processes that spans Asia-Pacific, Latin America, United Kingdom and North America regions, Rodney creates a high-impact, collaborative environment that eliminates silos and cross borders.
Additionally, Rodney serves on Seton Hall University Customer Experience Program Advisory Council and The Board of Directors for HANDS Housing and Neighborhood Development.
Risk solutions executive
Mark Hofberg is an accomplished risk management leader with over 20 years of industry experience. He previously served as a leader in a variety of audit, risk and compliance management functions within retail, wealth, and investment banking at Bank of America. Mark currently serves customers as Risk Solutions Executive within ServiceNow’s financial services division. Prior to joining ServiceNow, Mark served as RSA Archer’s field risk officer for US and Canada.
Mark has held various senior leadership roles at Accenture, Bank of America, RSA and now guides customers on their integrated risk transformation journeys with ServiceNow. He is passionate about the evolution of risk management, emerging risks, and the utilization of technology to optimize business outcomes. Mark has co-authored white papers on impacts of technical debt, digital risk, and has a patent on optimization of technology decisions (US 8,321,363 · Issued Nov 27, 2012) along with a patent pending process risk prioritization model. Mark holds a bachelor’s degree in engineering from North Carolina State University.
Ariane Chapelle is an honorary reader at University College London (UCL) and is an internationally recognised trainer and consultant in risk. She teaches Operational risk measurement for financial institutions and is a fellow of the Institute of Operational Risk..
Chapelle founded and runs her adivsory and training practice in risk management, serving financial organisations and international institutions of all sizes, including central banks and UN agencies. She is a former holder of the chair of international finance at the University of Brussels with backgrounds in internal audit, credit risk and investment risk. She has been active in operational risk management since 2000 and was formerly head of operational risk management at ING Group and Lloyds Banking Group.
Managing director, operational risk management, technology and cybersecurity
Mandar has over 20 years of engineering and risk management experience across Technology Operations, Governance and Audit, helping organizations meet business objectives through technology. Currently he is serving as a Managing Director at Citigroup in the Operational Risk group. Prior to Citi, Mandar was the Global CTRO at TD Bank Group, before which he served as the CTRO and CISO at the Bank of Montreal. In his prior career, Mandar has worked extensively with financial institutions globally through leadership roles at Cisco Systems, Inc., Accenture LLC, Alvarez & Marsal LLP, KPMG LLP and Ernst & Young LLP.
Mandar is an active member of the professional community and has presented at industry forums like Risk.Net, RSA and IAPP Conferences. Additionally, he is active in various profesional organizations such as ISACA, IAPP and ISC2 and has served as the Chair of the Canadian Banking Association’s CIRT (CISO Forum). He holds the CISSP, CIPP, CISA, and PMP certifications.
Head of Americas supervision
Stan is the Head of Americas Supervision at Citadel Securities where he covers the Equities, Futures, and ETF businesses, systematic trading, and trading technology. Stan is also an Adjunct Professor of Law at Fordham University School of Law teaching Trading, Risk Management & Market Structure Regulation. Stan previously was a Compliance Officer at Marshall Wace North America L.P. where he specialized in Quantitative Compliance and helped build the core US compliance program and scaled globally to EU and APAC. Prior to that he worked at Knight Capital Group focusing on algorithmic trading, market structure, and surveillance. He holds a J.D. in Law from Fordham University School of Law where he was an Associate Editor on the Journal of Corporate & Financial Law, and additionally holds an M.Eng. in Engineering Management, M.S. in Pharmaceutical Manufacturing Engineering, and M.A. in Technology, Policy & Ethics from Stevens Institute of Technology. Stan is Certified in Risk and Information Systems Control (“CRISC”), a Certified Data Privacy Solutions Engineer (“CDPSE”) and is also a Certified Fraud Examiner (“CFE”). Stan lectures and publishes on topics including FinTech, RegTech, market structure, alternative data, artificial intelligence, regulatory and enforcement matters, surveillance, cybersecurity, data privacy, and risk management.
Vice president operational risk
Shelly, in her role as VP Operational Risk at Daily Pay, is responsible to establish an operational risk framework from ground up, evaluate and mitigate emerging risks, and create a risk informed culture in a hyper growth business. Daily Pay is a leader in the On Demand Pay industry and Shelly is enabling business growth by continually improving its operational processes and Institutionalizing risk management by design. Prior to DailyPay, Shelly spent 10 years at American Express in various first and second line roles. In her last role at Amex, she led global operational risk for Travel Lifestyle Services (TLS) business in 22 markets, responsible to evaluate and mitigate business risks and risk oversight functions like Compliance Risk Assessment, Process Risk Self Assessment, Third Party Lifecycle management, Business Self Testing etc. She also spearheaded the build of control framework, oversight in emerging markets like China and Manila, and Global Business Travel, an AXP critical joint venture. She also had solid experience in Privacy Laws having worked in Privacy organization and partnering closely with Privacy, compliance and Legal on a regular basis. Shelly has a Technology background and is hands on to work with technology in assessing technology processes for risks or working on enhancements to risk management processes and programs.
Shelly likes to volunteer her time at St Joseph’s Center and Community Food Bank of NJ. She also volunteers to teach elementary kids math and coding.
Third-party risk management director
Chief executive officer
Patrick Naim is the CEO of Elseware and is widely recognized as an expert for operational risk modelling and quantification. Patrick has extensive experience in advising Fortune 500 companies in the banking, insurance and energy sectors for over 20 years in Continental Europe, the UK and North America.
Patrick is a frequent speaker on operational risk management. He is also the author of "Risk Quantification: Management, Diagnosis and Hedging" (Wiley, 2006), "Bayesian Networks" (Eyrolles, 2007) and "Bayesian Networks: a Practical Guide to Applications" (Wiley, 2008). Patrick graduated from Ecole Centrale de Paris (M.Sc.) in with a degree in economics and applied mathematics, and is qualified as an Associate in Risk Management (ARM).
Head of enterprise risk
The Clearing House
Rajat Baijal is the Managing Director – Global Head of Enterprise Risk at Cantor Fitzgerald. In this role, he is responsible for designing and embedding a robust Risk Framework across the firm. This includes articulating and implementing a robust Risk & Control Self-Assessment (RCSA), Risk Event Management, Key Risk Indicators etc. and ensuring that the Board is suitably informed about all material issues.
Rajat has an MBA in Finance and has previously worked for Kensington Mortgages, Lloyds Banking Group and Aviva specialising in global implementation of their Risk Framework. Rajat is a regular speaker at risk conferences across London and New York and has authored a number of articles for risk journals/textbooks.
Environmental and social risk officer
Chief learning officer
Risk.net and Central Banking
Head of anti-money laundering and fraud technologies
MUFG in the Americas
Associate vice president - 2LoD cybersecurity risk leader
General manager, TPRM
Chief evangelist and chief risk officer
John is Chief Evangelist & Chief Risk Officer with Supply Wisdom, the leading patented continuous risk intelligence and monitoring solution for third parties and locations. He is recognized as a global financial industry executive and risk subject matter expert, in vendor/third-party risk management, AML/CTF, KYC, and anti-fraud programs. Prior to joining Supply Wisdom, John held senior positions globally for Citi and Deutsche Bank covering corporate, investment, commercial, and consumer banking. He has managed global staff and corresponding budgets in multiple locations and delivered cost-efficient and operationally effective programs ensuring compliance with local and global regulatory requirements. Through interaction with Business Units, Internal Audit, and regulatory agencies, John resolved MRIAs, MRAs and Findings, on time and without penalty. John is a member of the Shared Assessments US and UK Steering Committees and Co-Chair of the Financial Industry Vertical Strategy Group.
Commercial editor, Americas
Cyber Risk Institute
Cyber Risk Institute.
John Goodman is a Senior Vice President for the Cyber Risk Institute. Mr. Goodman specializes in cybersecurity control standards for the financial services sector. He currently acts as the principal lead for CRI’s Profile, a NIST CSF-based standard for financial services.
He previously served as the Vice President of IT Management and Controls and as Deputy CIO for PenFed Credit Union. While there Mr. Goodman was primarily responsible for technology governance, cybersecurity compliance, and technology risk management. Mr. Goodman also contributed to the development of the CRI Profile as a volunteer while at PenFed.
Mr. Goodman holds a Bachelor of Science in Computer Science and Psychology (double major) from the University of Maryland, College Park and maintains several industry-recognized certifications, to include the CISSP, CCSK, CISM, CRISC, CGEIT, Open FAIR, and PMP. He currently lives in Fairfax, Virginia.
Global head of banking
Greg Kanevski, is the Global Head of Banking for ServiceNow serving as the company’s subject matter expert and leading the strategic plan for products within the Retail and Commercial Banking sector.
Prior to ServiceNow, Greg lead a centralized group of experienced professionals managing risk for a diverse number of business lines including Technology, Corporate Security and Data Management. His team was accountable for the first line risk responsibilities including assurance, risk assessments, program governance & execution as well as quantification analysis. Prior to this role, Greg managed a team of more than 300 security and technical professionals with an annual budget of $40M and a capital budget of approximately $65M that were focused on identity, data management and infrastructure security. Greg quickly earned respect by rebuilding the function in less than one year, as well as embarking on a modernization effort focused on an end-to-end integration & automation that reduced expenses. Prior to joining Citizens bank, Greg spent more than 20
Senior vice president, operational and resilience risk
Strategic enterprise risk management executive
Managing director, head of non-financial risk, Americas
Senior director enterprise risk management
Chief executive officer and founder
Renuka Shankar is in charge of the product strategy of averQ with a vision towards delivering high-value transparency solutions to financial institutions to manage their financial and operational risk. She strives to intently listen and empathize with customer needs, and enjoys building teams to deliver innovative solutions.
She was previously the cofounder & Vice President of Engineering at Certus Software Inc., where she delivered market-leading GRC solutions for Fortune 1000 companies. Prior to Certus, she was part of the early team at Rightworks through its $1B valuation and subsequent merger with i2 Inc. At Rightworks she led product development, technical partnerships, and customer services for both B2B marketplaces and enterprise clients. Her early career was in applied research in Human Computer Interactions at NASA Ames Center and technology transfer programs to leading aerospace companies.
She has an M.S. in Electrical Engineering from Vanderbilt University and B.E. from Anna University, India
Senior sales executive
Group business continuity implementation officer- wealth and investment management
Vice president, risk and control manager
With 14 years of Financial Services industry experience, Rob currently leads the Internal and External Loss Data team within Operational Risk Management at PNC. Rob has developed new risk frameworks and identifies and provides risk management and control solutions to address high profile and complex problems. Rob has overseen acquisition duties including integration of enterprise-wide risk data. Prior to joining PNC, Rob spent 7 years at BNY Mellon with positions in Asset Servicing and Global Markets. Rob has a keen eye for process improvements and automation using technology in the risk management and data analysis space.
Rob has held leadership roles at both PNC and BNY Mellon and holds a BSBA with a concentration in Economics from Robert Morris University and an MBA with a concentration in Management Information Systems from Point Park University.
Noah is a New York-based Senior Manager in EY’s Consulting practice within the Financial Services Office. He has many years of experience leading various technology, security and operational risk management initiatives in support of CIO and CTO-led strategic transformations. Noah currently leads EY’s Cloud Risk Governance competency for Financial Services in the US
Vice president of sales
Jeff Brandeis is c for averQ. Jeff brings over 25 years of experience of working with financial markets while being VP of Sales for Wolters Kluwer, TeamMate and in their Tax/Audit Division. He has built and led early development sales programs and teams to exponential growth and enjoys building teams that not only provide great solutions but truly meet and exceed customers needs.
Jeff began his career working for KPMG Peat Marwick as an Tax Accountant and then changed careers as he moved into his sales roles. Jeff has his BBA in Accounting and his MBA in Taxation from Baruch College and LIU respectively.
Greg Faraone, FRM
Vice president | sustainability & climate risk management
Sumitomo Mitsui Banking Corporation
Senior manager, sustainable finance
Kaitlin Johnson is a Senior Manager in EY’s financial services consulting practice, focused on sustainable finance. Kaitlin has supported global banks in designing and implementing their climate risk programs, developing their sustainability strategies and target operating models, and calculating financed emissions and setting decarbonization targets. Prior to sustainable finance, Kaitlin focused on conduct risk and front office controls.
She has a B.A. in Economics from Barnard College and holds the Sustainability and Climate Risk (SCR) certificate from GARP. She is currently pursuing an M.S. in Sustainability Management from Columbia University